Server security is often underestimated at its importance. If a site shares a server, movement from one site to another can happen with limited or no security measures used.
Security Review
- Is WAF configured and working
- Is server firewall set auto block abusive IPs or IP ranges
- Are sites isolated from each other enough
- Server firewall rules review
- SSH access review
- File permissions review
- Sudo rules review
Hardening
- Install or configuration of a server wide WAF (Web Application Firewall)
- Install of firewall and bad login blockers
- fail2ban or CSF
- Installation of Crowdsec for automated suspicious and bad behavior tracking and blocking
- Optional install and setup of cPguard – a malware detector, WAF, and firewall manager
- Requires a license from them, purchased by you
- Applying solutions to items found in review stage
Requirements
- SSH access to server – root access required
- Permissions to change server configuration
- License for any security suites to be installed
- cPguard